Filebeat Elasticsearch output data stream?

stephenb · December 6, 2024, 3:54am

Example: Can be set per input

filebeat.inputs:
- type: filestream
  id: my-filestream-id
  enabled: true
  paths:
    - /var/log/*.log
  fields_under_root: true
  fields:
    data_stream.type: logs
    data_stream.dataset: my.app
    data_stream.namespace: prod
    event.dataset: my.app

setup.ilm.enabled: false
setup.template.enabled: false
# setup.template.settings:
#   index.number_of_shards: 1

setup.kibana:

output.elasticsearch:
  hosts: ["http://localhost:9200"]
  index: "%{[data_stream.type]}-%{[data_stream.dataset]}-%{[data_stream.namespace]}"

Topic		Replies	Views
Filebeat - Datastreams? Beats filebeat	2	1376	November 22, 2021
Filebeat: Ingest logs to Datastream Elasticsearch	2	724	December 28, 2020
Logstash index template + data streams Logstash datastreams	1	8404	February 28, 2022
How to point Filebeat to send data to existing data stream in Elasticsearch? Beats beats-module	1	638	January 19, 2023
Datastream gets no data Elasticsearch	3	3813	October 28, 2020

Filebeat Elasticsearch output data stream?

Related topics